44 
CLAIMS 

Having thus described my invention, what I 
claim as new and desire to secure by Letters Patent 
is as follows: 

1. A method of operating a data processing system 
to control user access to a plurality of resources, 
said methqd including the steps of 

editii^g a list of resources, 

editing a list of profiles, each said profile 
containing a designation of at least one of said 
resources, and 

editing! a list of users to add or delete a 
profile for a user, said list of users including, 
for each listed user, a user ID by which the user can 
be authent leaned. 

2. A method as recited in claim 1, wherein all of 
said editing steps are performed under supervision 
of an administraitor to the exclusion of users. 

3. A method as recited in claim 1, including the 
further step of \ 

authorizing access of each user to selected 
resources included! in said resource list in 
accordance with contents of profiles in said list of 
profiles which are associated with each user in said 
list of users. \ 
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1 4. A metkod as recited in claim 3, wherein said 

2 authorizing\ step is performed upon detection of a 

3 said editing\ step. 

1 5. A inethod\as recited in claim 4, wherein said 

2 detection is performed by comparison of said lists 

3 of users, profiles and resources with prior lists of 

4 users, profiles and resources. 

1 6. A method ad recited in claim 3, including the 

2 further steps of\ 

3 authenticating a user in accordance with said 

4 userlD, and \ 

5 providing access to a resource, authorized by 

6 said authorizing atep, which is selected by said 

7 user authenticated! in said authenticating step. 

1 7. A method as rebited in claim 4, including the 

2 further steps of \ 

3 authenticating \a user in accordance with said 

4 userlD, and \ 

5 providing access to a resource, authorized by 

6 said authorizing stepi, which is selected by said 

7 user authenticated inlsaid authenticating step. 
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1 8. A method as ijecited in claim 5, including the 

2 further steps of 

3 authenticating a user in accordance with said 

4 user ID, and 

5 providing Recess to a resource, authorized by 

6 said authorizing step, which is selected by said 

7 user authenticated in said authenticating step. 



1 9 . A method as recited in claim 2 , including the 

2 further step of 

3 authorizfllng access of each user to selected 

4 resources included in said resource list in 

5 accordance with contents of profiles in said list of 

6 profiles which are associated with each user in said 

7 list of users. 

1 10. A mejchod as recited in claim 9, wherein said 

2 authorizing step is performed upon detection of an 

3 editing /step. 
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11. A /method as recited in claim 10, wherein 
detection of an editing step is performed by 
comparison of said lists of users, profiles and 
resources with prior lists of users, profiles and 
resou::ces. 
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1 12. A method as recited in claim 9, including the 

2 further steps of / 

3 authenticating a user in accordance with said 

4 user ID, and / 

5 providing access to a resource, authorized by 

6 said authorizing /step, which is selected by said 

7 user authenticated in said authenticating step. 

1 13. A method as recited in claim 10, including the 

2 further steps of 

3 authenticating a user in accordance with said 

4 user ID, and / 

5 providing access to a resource, authorized by 

6 said authorizing step, which is selected by said 

7 user authenticated in said authenticating step. 

1 14. A method as recited in claim 11, including the 

2 further steps of 

3 authenticating a user in accordance with said 

4 user ID, and 

5 providing access to a resource, authorized by 

6 said authorizing step, which is selected by said 

7 user authenticated in said authenticating step. 

1 15. A method as recited in claim 1, including the 

2 further/ step of 

3 de/leting a resource from all profiles 

4 specifying a resource to be deleted from said 

5 resource list during said step of editing said list 

6 of resources. 
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1 16. A method as re4\ited in claim 1, including the 

2 further step of 

3 deleting a prottle from all users in said list 

4 of users for which U profile to be deleted from said 

5 profile list is spedified during said step of 

6 editing said list pf profiles < 
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17. A data processing system having a plurality of 
available resources, said system including 
a server, 

means for c<^ntrolling access to said resources, 
said means for crontrolling access to said resources 
including a list of said resources, a list of 
profiles, each^profile corresponding to a said 
resource, and p list of users containing information 
for authenticating a user and a profile 
corresponding to said user, and 

means firor providing communication between a 
user and saAd server. 



1 18. A system as recited in claim 17, further 

2 including j 

3 means for editing any of said list of users, 

4 said lisc of profiles and said list of resources. 



1 19. A /system as recited in claim 18, further 

2 including 

3 means for detecting editing of any of said list 

4 of usirs, said list of profiles and said list of 

5 resources. 
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1 20. A system as recp.ted in claim 17, further 

2 including 

3 means for authotizing user access to selected 

4 ones of said resources in accordance with said 

5 profiles in said lipt of profiles and said users in 

6 said list of users, 



1 21. A system as recited in claim 19, further 

2 including 

3 means for author izing user access to selected 

4 ones of said resources in accordance with said 

5 profiles in said tist of profiles and said users in 

6 said list of usei/s responsive to said means for 

7 detecting editinc 

1 22. A system as/ recited in claim 17, further 

2 including 

3 means for Authenticating a user upon access by 

4 said user to safLd server. 
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23. A system ^s recited in claim 22, further 
including 

means for I directing a user authenticated by 
said means for I authenticating a user to a resource 
to which access of that user has been authorized by 
said author iziiig means. 



24. A system 
means for dir 
path data 



as recited in claim 23, wherein said 
cting is responsive to location or 
confcained in said list of resources. 
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25 • A system as recited in claim 24, wherein said 
path or address data is a URL. 



26. A system as re<pited in claim 17, further 
including 

means for delelbing 
specifying a resour 
resource list. 



a resource from all profiles 
e to be deleted from said 



27. A system as rejcited in claim 17, further 
including 

ting a profile from all users in 
said list of users /for which a profile to be deleted 
from said profile IList is specified. 



1 28. A computer readable medium containing code for 

2 operating a data processing system to control user 

3 access to a plura/lity of resources, said code 

4 implementing the /steps of 

5 editing a list of resources, 

6 editing a Mst of profiles, each said profile 

7 containing a designation of at least one of said 

8 resources, and 

9 editing a /list of users to add or delete a 

10 profile for a lAser, said list of users including, 

11 for each listed user, a userlD by which the user can 

12 be authenticatjed. 
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29. A computer readable medium as recited in claim 
28, wherein said co'ide requires all of said editing 
steps to be performed under supervision of an 
administrator to th^ exclusion of users. 



30. A computer 
28, further inc 
of 

authorizing 
resources included 
accordance with 
profiles which are 
list of users 



readable 



medium as recited in claim 
ludiJng code for implementing a step 



31. A computer 
30, wherein a code 
authorizing step i 
said editing step. 



32. A computer 
31, wherein a cod(i 
compares said li 
with prior lists 



of each user to selected 
in said resource list in 

of profiles in said list of 
associated with each user in said 



access 



cor tents 



readable 



medium as recited in claim 
section implementing said 
executed upon detection of a 



readable medium as recited in claim 
section performing said detection 
of users, profiles and resources 
i)f users, profiles and resources. 



is^:s 



33. A computer rfiadable medium as recited in claim 
30, further including code for implementing the 
steps of 

authenticating a user in accordance with said 
user ID, and 

providing a<^cess to a resource, authorized by 
step, which is selected by said 
d in said authenticating step. 



said authorizing 
user authenticat 
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1 34, A computer readable medium as recited in claim 

2 33, wherein said codi implementing said detection of 

3 an editing step compares said lists of users, 

4 profiles and resources with prior lists of users, 

5 profiles and resourcjes. 



1 35, A computer readable medium as recited in claim 

2 34, further including code implementing the further 

3 steps of 

4 authenticating I a user in accordance with said 

5 user ID, and 

6 providing acce±s to a resource, authorized by 

7 said authorizing stfep, which is selected by said 

8 user authenticated tn said authenticating step. 



1 36 • A computer readable medium as recited in claim 

2 28, further includp.ng code for implementing a step 

3 of 

4 deleting a resource from all profiles 

5 specifying a resource to be deleted from said 

6 resource list dur:.ng said step of editing said list 

7 of resources. 

1 37, A computer r<iadable medium as recited in claim 

2 28, further inclu/iing code for implementing a step 

3 of 

4 deleting a profile from all users in said list 

5 of users for which a profile to be deleted from said 

6 profile list is /specified during said step of 

7 editing said list of profiles. 
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